Another new challenge in IT world – Nickname (ReDoS) Aug 2018

A regular expression (regex or regexp for short) is a special text string for describing a search pattern. We can’t lack of this function in IT world. For example, your SIEM log parser and Web server input protection filter.

Eventhough if you want to represent a group of Strings according to a particular pattern then you should go for Regular Expression. Just heard that the regular expression function can be modify by attacker.Then conduct denial of service attack.

I download node.js package do the proof of concept. It looks that it is ture. For more details, please reference to attached diagram. Java is also known to be affected by ReDoS attacks.

Technical articles shown as below:

http://people.cs.vt.edu/dongyoon/papers/EUROSEC-17-EHP.pdf

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.